Don’t.
Generally, these things should be used to alert if an internal service has
been compromised (akin to using Canary Tokens), and the key copied. It is,
at best, a way to hear someone knocking.
On Wed, May 8, 2019 at 15:59 Stefan R. Filipek wrote:
> There's a blog post going around that
You can also just set client keepalives. Set TCPKeepAlive in ~/.ssh/config.
This has solved a bunch of random timeout problems due to carrier NAT or
similar.
On Sat, Sep 15, 2018 at 15:36 Constantine A. Murenin
wrote:
> On 15 September 2018 at 09:50, Chris Bennett <
>
no.
Sent form my iFoe.
On Jan 4, 2015, at 05:34, bofh goodb...@gmail.com wrote:
https://medium.com/@shazow/ssh-how-does-it-even-9e43586e4ffc
--
http://www.glumbert.com/media/shift
http://www.youtube.com/watch?v=tGvHNNOLnCk
This officer's men seem to follow him merely out of idle
Man. Thanks for the reminder.
+1
Sent form my iFoe.
On Aug 27, 2014, at 16:21, Diana Eichert deich...@wrench.com wrote:
I don't think it's off topic but others might. I'm writing this post to
remember Chuck Yerkes, a long time contributor to the misc@openbsd list.
While riding his
On Thu, Jun 5, 2014 at 5:09 PM, Giancarlo Razzolini
grazzol...@gmail.com wrote:
Em 05-06-2014 20:45, Eric Furman escreveu:
I predict that within a year OpenSSL will go the way of IPF.
For much the same reason...
IPF? Care to elaborate?
Well, in 2001 there was this drama around Darren Reed's
On Tue, May 13, 2014 at 11:57 PM, Otto Moerbeek o...@drijf.net wrote:
Op 14 mei 2014 om 07:48 heeft Johan Beisser j...@caustic.org het volgende
geschreven:
There are more reasons dynamic route entries are createf. For example to
record results of mtu path discovery.
That implies
On Wed, May 14, 2014 at 12:40 AM, Kevin Lyda ke...@ie.suberic.net wrote:
On 14 May 2014 08:20, Johan Beisser j...@caustic.org wrote:
On Tue, May 13, 2014 at 11:57 PM, Otto Moerbeek o...@drijf.net wrote:
Op 14 mei 2014 om 07:48 heeft Johan Beisser j...@caustic.org het
volgende geschreven
On Tue, May 13, 2014 at 4:58 AM, Magnus mag...@tokra.org wrote:
Hello Misc-Users,
I'm looking in to the possibility to do multihoming (more than one isp)
on a Carp setup.
To do live failover if one isp goes down, the other takes over.
Just as carp does if one of the routers goes down.
You
On May 13, 2014, at 18:47, Stuart McMurray kd5...@gmail.com wrote:
And, 163data.com.cn is a large source of shady activity.
I blocked the bulk of China and Asia outright at the router.
Quick solution, if not clean.
On Tue, May 13, 2014 at 10:31 PM, Johan Ryberg jo...@securit.se wrote:
Yes, it's related to a SSH brute force attack.
I have just never seen the the client IP in the routing table before. My
IP does not exist in the routing table when I SSH to the host.
The IP shouldn't be there, at all. But,
http://marc.info/?l=openbsd-cvsm=139637003025491w=2
You did.
On Thu, Apr 17, 2014 at 3:08 PM, Alex Naumov posix...@gmail.com wrote:
Hello,
I just want to ask about not English (translated) pages. I can't find
these.
Also translation.html and steelix are not avaliable.
Did I missed
On Thu, Apr 17, 2014 at 3:18 PM, Alex Naumov posix...@gmail.com wrote:
Thank you for link, but... why? I mean, we are not going to continue work on
translation anymore? Reason?
Read this thread on the topic from earlier this month.
http://marc.info/?t=13965139876r=1w=2
http://www.faqs.org/rfcs/rfc821.html (1982)
Section 4.2.1.
https://www.ietf.org/rfc/rfc2821.txt (2001)
Section 4.2.1 defines the groups, and 4.2.2.x defines specific codes.
https://www.rfc-editor.org/rfc/rfc2487.txt (1999)
Secure SMTP over TLS.
On Thu, Jan 30, 2014 at 3:19 AM, STeve Andre'
I feel like a bit of a jackass for the response.
Check smtpd/smtp_session.c
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/smtp_session.c?rev=1.192
On Thu, Jan 30, 2014 at 7:41 AM, Johan Beisser j...@caustic.org wrote:
http://www.faqs.org/rfcs/rfc821.html (1982)
Section 4.2.1
I'm not sure what you mean by too slow to route.
I've a net4501 with 64mb of RAM that's handling all of my IP traffic
at home. Biggest problem is swapping taking out available interrupts.
Modern networks are actually just too fast for the hardware these
days. It works fine for home stuff.
On
On Fri, Nov 15, 2013 at 9:00 PM, jordon open...@sirjorj.com wrote:
A few years back I put m0n0wall (FreeBSD-based) on it, hooked it up to 2
machines (1 WAN, 1 LAN) and pushed a file through it. Its max bandwidth was
well under my Internet connection speed.
It was replaced with a net5501.
On Oct 21, 2013, at 2:57, Henning Brauer lists-open...@bsws.de wrote:
* Илья Шипицин chipits...@gmail.com [2013-10-11 04:52]:
I was just curious why that timestamping is enabled by default.
'cause there is no reason to disable it.
why is tcp enabled by default?
Everyone knows that
On Oct 16, 2013, at 8:05, Otto Moerbeek o...@drijf.net wrote:
This will not be in 5.4, it wil be in 5.5. If you see shortcomings in
the docs explain in more detail.
I just read the QUEUEING section in the man page. Seems fairly clear to me, and
in some ways more clear.
One thing I'd like to
On Wed, Oct 16, 2013 at 11:04 AM, Norman Golisz li...@zcat.de wrote:
On Wed Oct 16 2013 08:54, Johan Beisser wrote:
Or cam I still just do very basic priority queueing in 5.5?
See pf.conf(5), 'set prio'. This doesn't even require you to define
queues, etc.
Right. I guess if I want to define
DNS proxy uses less bandwidth on your end.
There are a dozen DNS proxy services out there for media, they all
work on the same basic principle.
On Sun, Sep 15, 2013 at 4:55 AM, Monah Baki monahb...@gmail.com wrote:
Hi all,
I'm running OpenBSD 5.2 with squid for a friend who owns an ISP
tunnel
mechanism other than ssh.
-Joel
Johan Beisser j...@caustic.org wrote:
DNS proxy uses less bandwidth on your end.
There are a dozen DNS proxy services out there for media, they all
work on the same basic principle.
On Sun, Sep 15, 2013 at 4:55 AM, Monah Baki monahb...@gmail.com
On Tue, Aug 13, 2013 at 9:48 AM, Marian Hettwer m...@kernel32.de wrote:
Hi Loic,
Am 13.08.13 15:43, schrieb � Blot:
Hello Marian,
i think you are right, because bsd.rd is required for last chance to
repair system, among others.
right. And I'd like to leave it untouched. This hopefully
read the FAQ, Loic.
http://openbsd.org/faq/faq4.html#site
Site*.tgz, install.site and upgrade.site are a good starting point.
On Mon, Aug 12, 2013 at 11:59 AM, Loïc BLOT
loic.b...@unix-experience.fr wrote:
Hello @misc.
Today i'm working on automated deploy with PXE. I have successful found
, but this is not
the main problem here
--
Best regards,
Loïc BLOT,
UNIX systems, security and network expert
http://www.unix-experience.fr
Le lundi 12 août 2013 à 12:09 -0700, Johan Beisser a écrit :
read the FAQ, Loic.
http://openbsd.org/faq/faq4.html#site
Site*.tgz, install.site
On Jul 6, 2013, at 21:53, Nick Holland n...@holland-consulting.net wrote:
Feel free to take this off list with me if you prefer.
I kind of hope you keep this on list, actually. While I'm not affected by the
problem, I'm interested in the problem and solutions.
On Jul 3, 2013, at 20:23, Brad Smith b...@comstyle.com wrote:
On 03/07/13 11:07 PM, openda...@hushmail.com wrote:
Why do we need FUSE anyway?
To be able to utilize FUSE based filesystems.
Fuse is a terrible hack.
But, a useful one that solves all kinds of problems.
Sent form my iFoe.
On Tue, May 14, 2013 at 3:13 PM, Stuart Henderson s...@spacehopper.org wrote:
On 2013-05-14, Mattias Lindgren mlindg...@runelind.net wrote:
Hello,
I'm using a OpenBSD 5.3 (release) machine as my router connecting
to Comcast. Comcast provides native IPv6 access, however it does
so a little
Back in the day I'd abuse lndir(1) to link to the nfs mounted source
directory.
http://www.openbsd.org/cgi-bin/man.cgi?query=lndirsektion=1
Sent form my iFoe.
On Mar 31, 2013, at 7:48, David Higgs hig...@gmail.com wrote:
In trying to avoid multiple copies of OpenBSD source on my VMs, I am
I had a problem with tun interfaces and npppd. Try the pppx interface instead.
Sent form my iFoe.
On Mar 5, 2013, at 13:35, Jason Markowitz jma...@gmail.com wrote:
Hello,
I'm receiving the following errors when attempting to establish a vpn
session via l2tp, the ipsec side works fine
On Thu, Jan 31, 2013 at 4:06 PM, Aaron Mason simplersolut...@gmail.com wrote:
If you can, change to a different type of VPN. Not because of the storm,
but because PPTP has been broken security-wise. Good results have been
achieved with OpenVPN.
I'm having remarkable success with npppd(8) and
On Wed, Jan 30, 2013 at 8:56 AM, System Administrator ad...@bitwise.net wrote:
I finally got to deploy a CARP firewall cluster (HA failover for now).
Using only the official OpenBSD.org documentation, everything went very
smoothly even though the setup is not quite trivial (14 carp addresses
On Wed, Jan 30, 2013 at 9:44 AM, System Administrator ad...@bitwise.net wrote:
On 30 Jan 2013 at 9:29, Johan Beisser wrote:
While testing the failover and trying to ssh to a carp address I got
hit with the server key mismatch; hence this email. What is considered
best practice wrt ssh
On Wed, Jan 30, 2013 at 2:03 PM, Jiri B ji...@devio.us wrote:
On Wed, Jan 30, 2013 at 09:29:42AM -0800, Johan Beisser wrote:
Don't monitor SSH on the CARP address.
Doesn't it depend on the purpose of this SSH service?
If it is to manage individual boxes, then sshd should not listen
on CARP
Are you using just ipsec, or L2TP?
On Wed, Jan 23, 2013 at 11:48 PM, Jan Lambertz jd.arb...@googlemail.com wrote:
Hi,
Running OpenBSD 5.2 AMD64 release as homeserver.
Got Andoid 2.3 Samsung Mobile.
Want to connect via vpn IPSEC.
Config:
ike passive esp tunnel from any to any \
main auth
I just upgrade in place via bsd.rd on my net4501. Guess I could do the other
methods as well.
Sent form my iFoe.
On Jan 14, 2013, at 10:59, Nick Holland n...@holland-consulting.net wrote:
On 01/14/2013 10:15 AM, Sarah Caswell wrote:
Hi all,
I'm having a frustrating problem getting
On Thu, Jan 10, 2013 at 6:54 PM, Erling Westenvik
erling.westen...@gmail.com wrote:
Is it possible to have PF filter on MAC address on a machine with only
one physical nic? I'm aware that MAC filtering can only be done on a
machine configured as a bridge, but how to configure such a bridge?
On Fri, Jan 4, 2013 at 4:41 PM, Aaron Mason simplersolut...@gmail.com wrote:
On Sat, Jan 5, 2013 at 7:58 AM, Dan Shechter dans...@gmail.com wrote:
You have all failed to mention that the ALIX devices come with Swiss
chocolates in the package!
I've ordered direct from PCEngines before and
On Dec 30, 2012, at 8:31, pe...@bsdly.net (Peter N. M. Hansteen) wrote:
A case in point: one of the firewalls I maintain for old friends is a
Pentium III box with a whopping 512 MB of RAM, 8GB hard drive, you get
the idea. As in, seriously, you'll get better hardware for free or the
price of
On Sat, Dec 22, 2012 at 7:43 PM, Nick Holland
n...@holland-consulting.net wrote:
On 12/22/12 07:54, Friedrich Locke wrote:
...
But for other services i don't have now what i could use. A example: i need
a file system that must expand by adding more machine in the network in a
simple way.
in
On Tue, Nov 13, 2012 at 2:45 AM, Ignatios Souvatzis
ignat...@cs.uni-bonn.de wrote:
At least a sixth, IIRC. You left out MirBSD from your distribution list.
Also, you could argue that Minix, with its NetBSD compatibility,
is a seventh and MacOS-X, with its partially (Free-/Net-)BSD compatible
On Mon, Nov 12, 2012 at 5:14 PM, Greg 'groggy' Lehey g...@freebsd.org wrote:
- Then DragonflyBSD split from FreeBSD. Mainly personality driven
AFAICT. Again, this doesn't imply any criticism of the founder of
the new project.
There were some very valid technical reasons at the time as
On Thu, Nov 8, 2012 at 4:12 AM, Dan Shechter dans...@gmail.com wrote:
Hi All,
current situation
A windows 2008 server is receiving TCP traffic from a stock exchange
and sends it, almost as is, using UDP multicast to automated high
frequancy traders.
StockExchange --TCP--- windows2008
On Thu, Nov 8, 2012 at 9:58 AM, Ariel Burbaickij
ariel.burbaic...@gmail.com wrote:
If money is not a problem -- go buy high-trading on the chip solutions and
have sub-microsecond resolution.
http://lmgtfy.com/?q=high+frequency+trading+FPGA
I'd love to see PF offloading on to something like
On Oct 28, 2012, at 8:02, pe...@bsdly.net (Peter N. M. Hansteen) wrote:
I stumbled across this little gem of a blog post, I think this deserves
a wider audience, via my twitter feed:
http://mina.naguib.ca/blog/2012/10/22/the-little-ssh-that-sometimes-couldnt.html
To be filed under tcpdump
On Tue, Sep 11, 2012 at 9:06 PM, Sean Kamath kam...@moltingpenguin.com wrote:
I ended up buying direct from PC Engines for my alix 2d13's. Even though I'm
in the US, it was cheaper than netgate (where I bought a bunch of the exact
same thing for work). I ended up getting the red metal cases
On Aug 30, 2012, at 22:28, Simon ALFRED simonalf...@mail.com wrote:
Thank you for this first reply.
So, the only way is to use OpenBSD-current with npppd, and there's no other
way to do it ?
I can't say there's no other way to do it. PPTP is an option, via PoPToP. I
just found that npppd
On Thu, Aug 30, 2012 at 12:05 PM, Simon ALFRED simonalf...@mail.com wrote:
Hi everyone,
I have a firewall at work running OpenBSD 5.1-RELEASE
I need to make a vpn access for outside clients, they use MacOs 10.6 and
Windows XP/7.
I can't add thrid software on theses clients. So i need a
I've hit a bit of a wall digging around getting L2TP working with OpenBSD 5.1.
I've enabled pipex in kernel:
# sysctl -a | grep -E '(pipex|gre)'
net.inet.gre.allow=0
net.inet.gre.wccp=0
net.pipex.enable=1
Before anyone asks, yes, I had GRE enabled as well. But, I'm not
looking to run PPTP via
-0700
Johan Beisser j...@caustic.org wrote:
I've hit a bit of a wall digging around getting L2TP working with OpenBSD
5.1.
I've enabled pipex in kernel:
# sysctl -a | grep -E '(pipex|gre)'
net.inet.gre.allow=0
net.inet.gre.wccp=0
net.pipex.enable=1
Before anyone asks, yes, I had GRE
Yep, that was exactly it.
Thank you, again.
On Aug 15, 2012, at 16:01, YASUOKA Masahiko yasu...@yasuoka.net wrote:
Hi,
real.local.concentrate: tun0
this should be
realm.local.concentrate: tun0
I hope this will help you.
--yasuoka
On Wed, 15 Aug 2012 09:11:06 -0700
Johan Beisser j
On Mon, Jul 23, 2012 at 9:01 AM, Wojciech Puchar
woj...@wojtek.tensor.gdynia.pl wrote:
http://www.gwebtools.com/ns-spy/put your primary or secondary server here
Anyone know from what data does it get such an info? By scanning every
possible registered domain ?
Legal? I don't know. Ask a
You're confusing a SOCKS proxy with a HTTP proxy. They are not the same thing.
Sent form my iFoe.
On Jul 18, 2012, at 16:07, Paolo Aglialoro paol...@gmail.com wrote:
@Abel
I've had a look at dsocks page, the instructions are kinda criptic but
just did something this way:
# ssh -D 1080
On Fri, Jun 22, 2012 at 5:57 AM, Eric Furman ericfur...@fastmail.net wrote:
So what is wrong with perl??
It is nearly a standard in the UNIX Admin world.
It's a terrible language, and you should feel terrible for using it.
On Tue, Apr 24, 2012 at 6:07 AM, Otto Bretz otto.br...@gmail.com wrote:
On Tue, Apr 17, 2012 at 21:20, mxb m...@alumni.chalmers.se wrote:
I rolled out L2TP/IPSec (npppd) on OpenBSD-current with RADIUS-auth.
Used mostly by OSX and Win7. Stable and works without any additional
third-party
On Mon, Apr 16, 2012 at 9:00 AM, Laurence Rochfort
laurence.rochf...@gmail.com wrote:
Hello,
Is there a DynDNS client for OpenBSD?
Rolled my own in Python a while back. There are a few that're utter
overkill for simple updater.
You could do it in shell with tools in base with a little bit of
On Mon, Apr 16, 2012 at 9:43 AM, Ingo Schwarze schwa...@usta.de wrote:
Hi,
Johan Beisser wrote on Mon, Apr 16, 2012 at 09:18:22AM -0700:
On Mon, Apr 16, 2012 at 9:00 AM, Laurence Rochfort
laurence.rochf...@gmail.com wrote:
Is there a DynDNS client for OpenBSD?
Rolled my own in Python
On Wed, Apr 11, 2012 at 11:02 AM, Christian Weisgerber
na...@mips.inka.de wrote:
Gilles Chehade gil...@poolp.org wrote:
This must be satire. Right?
I mean, local-echo mode? What is this? 1975?
In lossy or high latency environments I find a local echo to be really
useful. To the point I
Dell has an ugly habit of changing components even within the same
model year of hardware. You can't predict how well supported something
is based on PowerEdge R410 until you have your specific one in front
of you.
On Wed, Apr 4, 2012 at 1:14 PM, Kostas Zorbadelos kzo...@otenet.gr wrote:
Hello
On Sat, Mar 10, 2012 at 9:15 AM, Nico Kadel-Garcia nka...@gmail.com wrote:
With multiple drives, especially for bulky softraid setups, it might get
overwhelming pretty fast.
The idea is interesting, and especially helpful if the machine was
previously built and the drives ordered differently
Sent form my iFoe.
On Mar 9, 2012, at 10:19, Nick Holland n...@holland-consulting.net wrote:
pitch mode=money benefactor=OpenBSD
Hey, if having an OS which takes the quality of its product -- and not much
else! -- seriously is important to you, this would be a good time to make a
donation to
On Feb 20, 2012, at 8:49, Jan Stary h...@stare.cz wrote:
On Feb 20 10:19:48, Daniel mora wrote:
I've worked with several different OS and phone brands (Nokia/Symbian,
iPhone, HTC/Android).
The one I feel more comfortable is the Nokia N900 it runs Maemo 5, is
a Debian like Linux, you can use
On Sun, Feb 19, 2012 at 7:14 AM, Luke Tymowski l...@veldt.ca wrote:
I use iSSH on an iPhone. But only in an emergency when I don't have
anything else. I wouldn't make regular use of it. (ie, twice in the
last year)
I've grown to like Panic's Prompt, and found it does really well with
tmux,
On Sun, Feb 19, 2012 at 9:14 AM, Anonymous cri...@ecn.org wrote:
BlackBerry has built in VPN and you can also buy a few different SSH and
SFTP apps.
If you're cheap, there's also BBSSH. While it's not perfect, it is
under active -if slow- development. As of November 2011, the developer
claims
On Sat, Feb 18, 2012 at 3:06 PM, Marcos Ariel Laufer
mar...@ipversion4.com wrote:
What newer smartphones do you recommend for using also as a tool for
managing OpenBSD servers (maybe windogs too) ? What experiences had you had
with smartphones and OpenBSD managing?
Your experience really
On Mon, Jan 2, 2012 at 10:59 AM, ropers rop...@gmail.com wrote:
On 2 January 2012 18:10, Nomen Nescio nob...@dizum.com wrote:
I don't rely on anyone's work.
Ladies and gentlemen: The great American delusion.
Randian delusion. It's not purely American, and never has been.
On Tue, Dec 27, 2011 at 10:09 AM, Dave U. Random
anonym...@anonymitaet-im-inter.net wrote:
Are the Longson/Godson MIPS boxes available over the counter yet? If so
where is the best place to order one? Thanks.
A brief search of the archives gives a few resources. Spelling the
architecture right
On Tue, Dec 20, 2011 at 2:41 PM, Jannik Pruitt
pruttel...@googlemail.com wrote:
Hi everyone.
i am brand new purchased my open bsd 5.0 on 11 Nov 2011.
I booted the CD on another computer installed every thing on a 32GB CF card.
Placed in my old thin client and it booked.
But the network card
On Wed, Dec 14, 2011 at 5:54 PM, Erling Westenvik
erling.westen...@gmail.com wrote:
After upgrading (re-installing from scratch) my firewall from 4.6 (or
4.7) to 5.0, I have not been able to get OpenVPN back working. Please
forgive me for asking here at misc but I have spent two days Googling,
On Thu, Dec 1, 2011 at 8:02 AM, Rares Aioanei bsdlis...@gmail.com wrote:
As a citizen of an English-speaking country AND a guru, John, you should
at least know how to spell. David's right, you know.
You don't need to know how to spell. People have spell checkers these days.
Check dhclient.conf(5) and read about the supersede statement.
jb
Semt frim my ipHnoe.
On Oct 20, 2011, at 8:35, sophia.ort...@googlemail.com wrote:
Dear Sirs!
I realy do not want that dhclient touch resolv.conf.
The recomendation in
On Thu, Oct 20, 2011 at 11:11 AM, sophia.ort...@googlemail.com wrote:
Johan Beisser j...@caustic.org wrote:
Check dhclient.conf(5) and read about the supersede statement.
Thank you very much for your kind answer. Of course I read not
only dhclient.conf (5), but also a lot of man pages
I pointed out that Dennis Ritchie did something we all should admire:
Got to watch what he created blossom, and change the world.
Remarkably, for the better.
We should all be so lucky.
On Thu, Oct 13, 2011 at 10:38 AM, Stefan Midjich sweh...@gmail.com wrote:
So many lives touched, so many
block all
Permit inbound port 80, but do not permit new outbound connections.
Consider each interface a separate firewall, with separate flows
entirely, then use policy enforcement (see tagging:
http://cvs.openbsd.org/faq/pf/tagging.html) to ensure only properly
tagged packets are passed out from
On Wed, Sep 7, 2011 at 5:24 PM, roberth rob...@openbsd.pap.st wrote:
don't be sorry, just tell me why, i am just curious.
- Following -stable with security patches matches my existing in house
corporate policy for Linux.
- It reduces variations between configurations of a given machine
function
find / -type f -perm -0111 -exec ldd {} 2/dev/null \; -print | awk
'/libc.so/ {print $7}' | sort | uniq
On Fri, Jul 29, 2011 at 8:50 AM, johnw johnw.m...@gmail.com wrote:
(23:24:04) john@pdc:[~]$ du -sh /usr/lib/libc.so.*
704K /usr/lib/libc.so.34.2
704K /usr/lib/libc.so.35.0
[snip]
2.4M
On Thu, Jul 28, 2011 at 2:00 PM, R0me0 *** knight@gmail.com wrote:
Hello misc.
I would like to know if is possible do the following:
clients--OpenBSD_FWExternal_mail_server
when clients send or receive an email, OpenBSD catch this mail and send a
copy of
On Tue, Jul 19, 2011 at 9:57 AM, Amit Kulkarni amitk...@gmail.com wrote:
http://openports.se/www/rt
?
written in perl.
As someone who uses this for ticket tracking, let me be the first to
say it's terrible.
2011/7/19 Mikael Vsterdahl m.osterd...@gmail.com:
Terrible? In what way? I use it in my work and I think it works great.
What ticket software do you think is better?
I don't have one. I think they all suck equally.
On Tue, Jul 19, 2011 at 11:38 AM, Amit Kulkarni amitk...@gmail.com wrote:
Can you elaborate? Where they suck?
RT: written in perl, painful to upgrade (painful enough, that we've
not touched ours in over a year). Ugly interface, but that's the least
of its problems. Without a good way to manage
On Tue, Jul 19, 2011 at 1:20 PM, Nico Kadel-Garcia nka...@gmail.com wrote:
On Tue, Jul 19, 2011 at 12:59 PM, Johan Beisser j...@caustic.org wrote:
It takes significant, thoughtful re-organizaton and a saner workflow.
Yes. It's non-trivial to make that happen as a default.
What would
On Wed, Jul 13, 2011 at 1:01 PM, Paolo Aglialoro paol...@gmail.com wrote:
Watch out for using apple desktop boxes as servers: apple has always put
style in front of reliability and, especially for such big boxes when
run 24/7, airflow and heat can become serious issues when you least expect
On Jul 4, 2011, at 12:26, Wesley MOUEDINE ASSABY open...@e-solutions.re
wrote:
Hi,
I have a question :
Is it possible with OpenBSD to bond 2 adsl connections (download=8Mb/s ;
upload=1Mb/s) with different ISP?
No. Unless you have your own IP space, and both ISPs are willing to advertise
On Thu, Jun 23, 2011 at 11:57 AM, Brett brett.ma...@gmail.com wrote:
Sure. Not to mention it came with source code, which you only got from
ATT if you had a source license, and those were*expensive*. I was
fortunate enough to work for a company that had exactly that source
license during the
On Jun 21, 2011, at 18:48, Benny Lofgren bl-li...@lofgren.biz wrote:
On 2011-06-22 03.03, vadi...@gmail.com wrote:
Please continue to use Linux.
That's ugly, useless and dangerous.
Oops, looks like that was a holy war type of question. Sorry I did
not want to start that.
It's not.
Linus
On Jun 21, 2011, at 20:20, vadi...@gmail.com wrote:
Sorry I really did not want to start any flame. I just thought that
getting answer from the mailing list would be faster than spending my
time studying source code of the new system.
What you should do is relearn the proper way. :-)
Ok,
On Wed, Jun 1, 2011 at 6:02 PM, Simranjit Gill sim...@engageinc.com wrote:
Hello,
I want to use the IPv6 source code in one of the products manufactured by my
company and need to know if there are any restrictions or limitations
regarding the use of source code in commercial products.
On May 28, 2011, at 5:36, Jean-FranC'ois SIMON jfsimon1...@gmail.com wrote:
All
Thanks for your answers, I've set up my question not accurately enought. I
would like to have a file logging the activity of dmesg after boot as well.
I'm not sure it is the reight way to set it up.
Here's my
On Sun, May 8, 2011 at 3:25 PM, roberth rob...@openbsd.pap.st wrote:
Uhum. Sure that's a way to approach this.
That's the supported way. With that ammount of support required.
Fine with that.
I usually build the new kernel, major utilities that require the new
kernel as per
On Feb 3, 2011, at 5:17, Martin SchrC6der mar...@oneiros.de wrote:
2011/2/3 Bret Lambert bret.lamb...@gmail.com:
Counting my toaster?
Your toaster has an IP?
Yours doesn't?
I prefer to tar(1)...
On 1/7/11, Jeff Ross jr...@openvistas.net wrote:
Hi,
I have 2 servers that get backed up to tape. I was scping the daily
dump files to the server with the tape attached but now I no longer have
hard disk room to do that.
So I read the man page for rdump/dump and
On Thu, Dec 23, 2010 at 9:19 AM, Alessandro Baggi
alessandro.ba...@gmail.com wrote:
Hi list, I've tried to use the groups field for pfsync. I've changed in my
pf rules, the wan interface ext=xl0 with ext=egress, then when I try to
get a fault with firewall 1, firewall 2 become master, but all
On Tue, Dec 14, 2010 at 2:06 PM, Tomas Vavrys vav...@cleancode.cz wrote:
Is there a light at the end of the tunnel somewhere to make email
secure even for amateurs who don't know how to use PGP? I'm very
curious about the future of email, especially now. I would like to
hear opinions of
On Sun, Oct 31, 2010 at 3:39 PM, Jamie Paul Griffin j...@gnix.co.uk wrote:
Everytime one of you write to Theo directly,
I feel like I'm watching gay porn.
would someone please block this prick. it was funny to start with but now
it's intensely annoying.
You could just toss his email in to
pass all
On Wed, Aug 4, 2010 at 3:32 PM, Peter Merritt pwmerr...@weirdwater.org wrote:
What would be the most barebones pf.conf for a OpenBSD 4.7 nat firewall
with 2 nics, that passes everything.
Peter
On Mon, Jun 7, 2010 at 4:35 PM, Jacob L. Leifman jac...@bitwise.net wrote:
(yes, I am aware that there are
specialized applications that do require the use of a monster-sized
dump truck with an engine to match, but in reality how many places have
a genuine need of a database that even with
I have a pair of freshly installed OpenBSD 4.7/amd64-RELEASE systems.
They're running redundant failover pairs with fw1 being the master.
It seems I've got a problem getting pfsync to properly pass a full
bulk update over, so longer term sessions time out when the MASTER
takes over for the BACKUP
Build an anchor, have a ruleset loaded to it by cron, and removed at
the specified time later.
On Mon, May 17, 2010 at 7:03 AM, Leonardo Carneiro - Veltrac
lscarne...@veltrac.com.br wrote:
There is a way to do time-based rules on pf? Something like this packet
will /pass/ from 10h to 13h or
On Thu, Apr 15, 2010 at 10:34 AM, Thomas Pfaff tpf...@tp76.info wrote:
There's non-free software in the ports tree.
Good thing it's in ports, then. Keeps that shady license where we can
see it, and choose to suffer with it or not.
On Sat, Apr 10, 2010 at 7:55 AM, Jozsi Vadkan jozsi.avad...@gmail.com wrote:
Can someone [same subnet, e.g.: with a hub, not switch..] sniff my skype
password when i'm using Skype? Is it encrypted?
Why are you asking a Skype support question on an OpenBSD mailing list?
The best way to know is
On Fri, Feb 26, 2010 at 4:44 PM, Citra Cool cc.bel...@gmail.com wrote:
Can I selling openBSD in CD for profit??
The OpenBSD project has a hard enough time making money on the CDs
they're selling to fund the project.
But, give this a read anyway.
http://openbsd.org/policy.html
1 - 100 of 252 matches
Mail list logo